An Agent Based Intelligent Dynamic Vulnerability Analysis Framework for Critical SQLIA Attacks: Intelligent SQLIA Vulnerability Analyzer Agent

This article describes how software vulnerability analysis and testing for web applications should detect not only the common attacks but also dynamic vulnerability attacks. These are the attacks such as structured query language injection attacks (SQLIAs) which will extract the most crucial user information from the targeted database. In this proposed approach, an intelligent agent namely intelligent vulnerability analyzer agent (IVA) is proposed in which the external attacks due to dynamic user inputs are identified using a heuristic-guided intelligent graph searching and then a pre and post condition based analysis is performed to identify the dynamic vulnerabilities. Further, the proposed approach is compared with some of the existing works based on the number of false positives and false negatives of attacks detection and confirmed that the proposed work is a novel and effective one in finding out SQLIAs.

MoreLess

Year of publication:	2018
Authors:	Dharmalingam, Jeya Mala ; Eswaran, M
Published in:	International Journal of Intelligent Information Technologies (IJIIT). - IGI Global, ISSN 1548-3665, ZDB-ID 2400990-8. - Vol. 14.2018, 3 (01.07.), p. 56-82
Publisher:	IGI Global
Subject:	Intelligent Vulnerability Analyzer Agent (IVA) \| Software Testing \| Software Vulnerability Testing \| Structured Query Language Injection Attack (SQLIA) \| Web Applications

Online Resource

Check full text access |

More access options

doi.org

Check Google Scholar

In libraries world-wide (WorldCat)

In German libraries (KVK)

subito order

I need help

More details

Type of publication:	Article
Language:	English
Other identifiers:	10.4018/IJIIT.2018070104 [DOI]
Source:	Other ZBW resources

Persistent link: https://www.econbiz.de/10012045525